Tanya Janca · Dec 27, 2019 · 4:10 AM UTC

Tanya Janca

Tanya Janca

@shehackspurple

27 Dec 2019

I just published "Jobs in Information Security (InfoSec)" on #Medium. If you want to know about all the different types of jobs in InfoSec, give it read. Also, let me know which jobs I missed! link.medium.com/vMvUctqBK2

Jobs in Information Security (InfoSec)

Every idea needs a Medium

link.medium.com

231

602

Bil Corry · Dec 27, 2019 · 1:41 PM UTC

Bil Corry · Dec 27, 2019 · 1:41 PM UTC

Bil Corry @bilcorry

27 Dec 2019

Replying to @shehackspurple

Depends on the org and how big it is, but there is also business continuity planning, disaster recovery, identity and access management, vendor management, technical compliance, program management, internal/external communications, inbound due diligence, cryptography management.

Dec 27, 2019 · 1:41 PM UTC

Tanya Janca · Dec 27, 2019 · 5:41 PM UTC

Tanya Janca

@shehackspurple

27 Dec 2019

Replying to @bilcorry

Time to update my article!

Nathan McNulty · Dec 28, 2019 · 7:52 AM UTC

Nathan McNulty @NathanMcNulty

28 Dec 2019

Replying to @bilcorry @shehackspurple

Doesn't most of that fall under traditional operations? While things like BC/DR and IAM make sense to pull into the InfoSec umbrella, often these are implemented before a security team is even established and don't migrate away from ops (that I've seen).

Bil Corry · Dec 28, 2019 · 11:32 AM UTC

Bil Corry @bilcorry

28 Dec 2019

I’ve seen BCP fall under Compliance, DR under Infra, IAM under IT, physical security under Facilities, employee travel safety under HR, anti-fraud under Risk, but also seen those under InfoSec, especially at larger companies.